Protecht Group | Application Security Engineer
vor 2 Wochen
About us
We are Protecht - a fast growth Governance, Risk & Compliance (GRC) SaaS business.
We provide world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.
Our cloud-based SaaS platform – Protecht.ERM is what makes us really stand out.
It's one of the most comprehensive, flexible, and dynamic risk management solutions available today.
The Culture and Benefits you don't want to miss
At Protecht, you will be part of a growing and high performing technology team.
A positive and super friendly culture awaits you, where learning is valued and supported.
We empower our people through leadership, training, knowledge-sharing, and mentorship.
Here are some of the perks of working with Protecht:
A modern TechStack and great opportunity to work within a dynamic team A highly flexible culture – our way of working lets people work across home and our offices A strong commitment to your learning and development - fortnightly dedicated L&D afternoons Reward & Recognition programs A strong focus on work / life balance with access to Birthday leave, bonus days, paid parental leave and long service leave Monthly social events Competitive remuneration and Annual Performance Bonus Novated car leasing Wellbeing support Generous Employee Referral program Let's talk about your new role
As our Application Security Engineer, you will help ensure that every step of the software development lifecycle follows security best practices in supporting and developing our SaaS product – Protecht.ERM (Enterprise Risk Management).
Located in our central Sydney office and reporting to the Head of Cyber Security, you will be working in a fun and exciting security team that strives to implement best security practices for development, testing and agile project delivery.
Key responsibilities
Review application code for security vulnerabilities and best practices.
Help Protecht developers deliver high quality and security hardened code based on OWASP and Protecht secure coding standards.
Assess application vulnerabilities and provide clear paths for developers to mitigate the vulnerabilities.
Create and maintain a single view of application security tasks from different sources, analyse and prioritise the tasks with different dev teams.
Drive and upskill Protecht developers to maintain a security aware culture.
Own and enforce secure development policies amongst the Protecht development teams.
Create and maintain documentation to support the development of secure software.
Run automated security testing tools (SAST, DAST) to detect vulnerabilities.
Build and integrate automated security tools into CI/CD pipelines for continuous security testing.
Work closely with Protecht developers and platform teams to integrate security throughout the Software Development Life Cycle (SDLC).
Ensure security requirements are incorporated into the design phase and architecture reviews.
Perform threat modelling with the Protecht development teams to identify and prioritize potential security risks during the design phase.
Monitor the evolving threat landscape and proactively conduct security research to identify common application threats and attack vectors to then develop mitigating solutions and minimise risk.
Collaborate with external stakeholders for the scoping, managing, validating and remediating of vulnerability assessment and penetration tests.
Participate in audits and reviews to validate the security of applications (ISO27001, SOC2, IRAP).
Ensure applications comply with relevant security standards and regulations (e.g., OWASP, GDPR).
Collaborate in an agile environment with cyber security, development and platform teams.
Contribute to various security projects and assist the Head of Cyber Security in delivering the cyber security roadmap.
Skills / Experience you need for success...
This role suits you if you have:
Passion for application security.
Relevant tertiary qualification such as a degree in computer science or information systems.
2 or more years proven commercial experience in security, preferably in application security or software engineering role.
Experience with architecture and security reviews, threat modelling applications.
Strong understanding of secure software development fundamentals.
The ability to identify security issues through secure code review.
Commercial experience Java and/or React development.
Experience with REST APIs.
Experience with common information security frameworks, standards, principles, and processes (OWASP, SANS, NIST, ISO, etc.).
Understanding and experience with common security libraries, security controls, and common security vulnerabilities.
Desirable attributes
Experience with cloud infrastructure environments (AWS) and containerized environments (Docker, Kubernetes).
Understanding of identity providers (SAML, SCIM).
Experience with SAST/DAST tools.
Experience using JIRA and Confluence.
Understanding of risk management.
Exposure to penetration testing for web application.
Security / Application Security Certifications (CISSP, CEH, OSCP, CREST).
Next steps
With a swift screening and interview process in place, we are happy to invite you to apply.
If you think this may be your next opportunity and you want to be part of a Great Place to Work – Certified organization, Apply online today
Visit our website to find out a little more about working with us.
#J-18808-Ljbffr
-
Application Security Engineer
vor 4 Wochen
Sydney, Österreich Protecht Group VollzeitAbout usWe are Protecht - a fast growth Governance, Risk & Compliance (GRC) SaaS business.We provide world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our cloud-based SaaS platform – Protecht.ERM is what makes us really...
-
Sydney, Österreich Tideri Jobbörse VollzeitAbout us We are Protecht - a fast growth Governance, Risk & Compliance (GRC) SaaS business.We provide world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA & Europe.Our cloud-based SaaS platform – Protecht.ERM is what makes us really...
-
Risk Advisor
vor 1 Monat
Sydney, Österreich Protecht Group VollzeitProtecht is redefining the way the world thinks about risk.Our cloud-based SaaS platform – Protecht.ERM – is what makes us really stand out.It's one of the most comprehensive, flexible, and dynamic risk management solutions available today.A little bit about our role:Due to growth, we have a new role for a ERM Advisor to join our team at Protecht!Are you...
-
Risk Advisor
vor 1 Monat
Sydney, Österreich Protecht Group VollzeitProtecht is redefining the way the world thinks about risk.Our cloud-based SaaS platform – Protecht.ERM – is what makes us really stand out. It's one of the most comprehensive, flexible, and dynamic risk management solutions available today.A little bit about our role:Due to growth, we have a new role for a ERM Advisor to join our team at Protecht!Are...
-
Application Security Engineer
vor 2 Wochen
Sydney, Österreich Advanced Personnel Management VollzeitThe Role APM is recruiting for an Application Security Engineer, reporting into the Head of Cyber Security – APAC.This role can be based in any of our tech hubs across Perth, Sydney, Melbourne, Geelong or Brisbane.The role is responsible for improving the security of internal applications by identifying and mitigating security vulnerabilities.You will also...
-
Senior Application Security Engineer
vor 2 Wochen
Sydney, Österreich Macquarie Bank Limited VollzeitJoin our vibrant application security team within the Corporate Operations Group cybersecurity division to shape the future of software development.At Macquarie, our advantage is bringing together diverse people and empowering them to shape all kinds of possibilities.We are a global financial services group operating in 34 markets and with 55 years of...
-
Senior Application Security Engineer
vor 2 Monaten
Sydney, Österreich Tideri Jobbörse VollzeitSenior Application Security Engineer (AU) DroneShield is a global provider of counterdrone defense solutions, specializing in C-UxS AI, RF sensing, AI/ML, Sensor Fusion, Rapid Prototyping & MIL-SPEC manufacturing.Work with cutting-edge technology, making the world a safer and more secure place.DroneShield (ASX:DRO) offers an opportunity to solve some of the...
-
Application Security Engineer
vor 3 Monaten
Sydney, Österreich Marigold VollzeitMarigold Marigold helps brands acquire customers through multiple channels, engage existing customers with curated offers, and turn customers into superfans.Marigold helps brands foster customer relationships through the science and art of connection.Marigold Relationship Marketing is a suite of world-class martech solutions that help marketers create long...
-
Security Engineer, Application Security
vor 3 Wochen
Sydney, Österreich Amazon VollzeitIn Amazon Stores, we ship some of the widest arrays of technology found at any company.From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec engineer, you will collaborate with software...
-
Sr. Security Engineer, Application Security
vor 3 Wochen
Sydney, Österreich Amazon VollzeitSr.Security Engineer, Application SecurityIn Amazon Stores, we ship some of the widest arrays of technology found at any company.From amazon.com to world-class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec...
-
Senior Application Security Engineer
vor 1 Woche
Sydney, Österreich Tyro Payments VollzeitSenior Application Security EngineerApplyLocations: Sydney, NSWTime Type: Full TimePosted On: Posted 7 Days AgoJob Requisition ID: JR240Why work for TyroWe're not just like every other bank. Tyro has always been a tech company at heart, but fostering a diverse and inclusive environment, and a passion for continuous learning has always been one of the most...
-
Senior Application Security Engineer
Vor 7 Tagen
Sydney, Österreich Tyro Payments VollzeitSenior Application Security EngineerApply Locations: Sydney, NSWTime Type: Full TimePosted On: Posted 7 Days AgoJob Requisition ID: JR240Why work for Tyro We're not just like every other bank. Tyro has always been a tech company at heart, but fostering a diverse and inclusive environment, and a passion for continuous learning has always been one of the most...
-
Security Engineer, Application Security
vor 3 Wochen
Sydney, Österreich Amazon VollzeitIn Amazon Stores, we ship some of the widest arrays of technology found at any company.From amazon.com to world-class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec engineer, you will collaborate with software...
-
Amazon | Security Engineer, Application Security
vor 3 Wochen
Sydney, Österreich Tideri Jobbörse VollzeitIn Amazon Stores, we ship some of the widest arrays of technology found at any company.From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec engineer, you will collaborate with software...
-
Senior Application Security Engineer
vor 3 Monaten
Sydney, Österreich Droneshield VollzeitSenior Application Security Engineer (AU)DroneShield is a global provider of counterdrone defense solutions, specializing in C-UxS AI, RF sensing, AI/ML, Sensor Fusion, Rapid Prototyping & MIL-SPEC manufacturing.Work with cutting-edge technology, making the world a safer and more secure place.DroneShield (ASX:DRO) offers an opportunity to solve some of the...
-
Senior Security Engineer
vor 1 Monat
Sydney, Österreich Tiktok VollzeitSenior Security Engineer - Application / Product SecurityAbout the CompanyTikTok is the leading destination for short-form mobile video. At TikTok, our mission is to inspire creativity and bring joy. TikTok's global headquarters are in Los Angeles and Singapore, and its offices include New York, London, Dublin, Paris, Berlin, Dubai, Jakarta, Seoul, and...
-
Sydney, Österreich Tideri Jobbörse VollzeitJoin our vibrant application security team within the Corporate Operations Group cybersecurity division to shape the future of software development.At Macquarie, our advantage is bringing together diverse people and empowering them to shape all kinds of possibilities.We are a global financial services group operating in 34 markets and with 55 years of...
-
Sydney, Österreich Tideri Jobbörse VollzeitThe Role APM is recruiting for an Application Security Engineer, reporting into the Head of Cyber Security – APAC.This role can be based in any of our tech hubs across Perth, Sydney, Melbourne, Geelong or Brisbane.The role is responsible for improving the security of internal applications by identifying and mitigating security vulnerabilities.You will also...
-
Sydney, Österreich Tideri Jobbörse VollzeitSenior Application Security Engineer Apply Locations: Sydney, NSW Time Type: Full Time Posted On: Posted 7 Days Ago Job Requisition ID: JR240 Why work for Tyro We're not just like every other bank.Tyro has always been a tech company at heart, but fostering a diverse and inclusive environment, and a passion for continuous learning has always been one of the...
-
Application Security Consultant
vor 3 Wochen
Sydney, Österreich This Is An It Support Group VollzeitYour new team: The Application Security team, a part of the wider Cyber Security team, partners with our engineering teams to enable DevSecOps by integrating security into the software development lifecycle through the following services:Tooling and Automation: Embedding security tools and automation into the SDLC (such as Snyk and GitHub Advanced Security)...
